Lucene search
K

13 matches found

NVD
NVD
added 5 days ago8 views

CVE-2026-56668

ZITADEL is an open source identity management platform. Prior to 4.15.3, ZITADEL's OAuth2 Token Exchange endpoint for urn:ietf:params:oauth:grant-type:token-exchange does not verify that the subject token belongs to the requesting client or that requested scopes remain within the original token's...

8.1CVSS0.00231EPSS
Exploits0References3
CVE
CVE
added 5 days ago12 views

CVE-2026-56668

Product/Component : ZITADEL identity management platform (OAuth2 Token Exchange endpoint). Vulnerability : Prior to version 4.15.3, the endpoint for grant-type: token-exchange does not verify that the subject token belongs to the requesting client, nor ensure requested scopes stay within the orig...

8.1CVSS6.1AI score0.00231EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2026/06/10 5:38 p.m.8 views

keycloak: Keycloak: Privilege escalation due to oversized subject_token JWT

A flaw was found in Keycloak. An authenticated user with low privileges can exploit this vulnerability by sending an oversized subjecttoken JSON Web Token JWT to the TokenEndpoint. When the token exceeds a 4000-character limit, it is silently dropped, causing the system to fall back to client...

8.8CVSS5.4AI score0.0032EPSS
Exploits0References4
OSV
OSV
added 2026/05/27 3:33 p.m.4 views

GHSA-RR5Q-3XWR-F323 Keycloak Vulnerable to Improper Validation of Specified Quantity in Input

A flaw was found in Keycloak. An authenticated user with low privileges can exploit this vulnerability by sending an oversized subjecttoken JSON Web Token JWT to the TokenEndpoint. When the token exceeds a 4000-character limit, it is silently dropped, causing the system to fall back to client...

6.8CVSS5.7AI score0.0032EPSS
Exploits0References11
NVD
NVD
added 2026/05/27 2:17 p.m.15 views

CVE-2026-9704

A flaw was found in Keycloak. An authenticated user with low privileges can exploit this vulnerability by sending an oversized subjecttoken JSON Web Token JWT to the TokenEndpoint. When the token exceeds a 4000-character limit, it is silently dropped, causing the system to fall back to client...

8.8CVSS0.0032EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2026/05/27 12:56 p.m.11 views

CVE-2026-9704 Keycloak: keycloak: privilege escalation due to oversized subject_token jwt

A flaw was found in Keycloak. An authenticated user with low privileges can exploit this vulnerability by sending an oversized subjecttoken JSON Web Token JWT to the TokenEndpoint. When the token exceeds a 4000-character limit, it is silently dropped, causing the system to fall back to client...

6.8CVSS5.8AI score0.0032EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2026/05/27 12:56 p.m.9 views

CVE-2026-9704

A flaw was found in Keycloak. An authenticated user with low privileges can exploit this vulnerability by sending an oversized subjecttoken JSON Web Token JWT to the TokenEndpoint. When the token exceeds a 4000-character limit, it is silently dropped, causing the system to fall back to client...

8.8CVSS5.8AI score0.0032EPSS
Exploits0References7
CVE
CVE
added 2026/05/27 12:56 p.m.87 views

CVE-2026-9704

Summary: CVE-2026-9704 affects Keycloak. An authenticated user with low privileges can trigger privilege escalation by sending an oversized subject_token JWT to the TokenEndpoint; if the token exceeds 4000 characters, it is silently dropped, causing the system to fall back to client credentials a...

8.8CVSS5.8AI score0.0032EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2026/05/27 12:56 p.m.52 views

CVE-2026-9704 Keycloak: keycloak: privilege escalation due to oversized subject_token jwt

A flaw was found in Keycloak. An authenticated user with low privileges can exploit this vulnerability by sending an oversized subjecttoken JSON Web Token JWT to the TokenEndpoint. When the token exceeds a 4000-character limit, it is silently dropped, causing the system to fall back to client...

6.8CVSS0.0032EPSS
Exploits0References6
EUVD
EUVD
added 2026/05/27 12:56 p.m.13 views

EUVD-2026-32300

A flaw was found in Keycloak. An authenticated user with low privileges can exploit this vulnerability by sending an oversized subjecttoken JSON Web Token JWT to the TokenEndpoint. When the token exceeds a 4000-character limit, it is silently dropped, causing the system to fall back to client...

6.8CVSS5.8AI score0.0032EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/05/27 12:50 p.m.13 views

CVE-2026-9704

A flaw was found in Keycloak. An authenticated user with low privileges can exploit this vulnerability by sending an oversized subjecttoken JSON Web Token JWT to the TokenEndpoint. When the token exceeds a 4000-character limit, it is silently dropped, causing the system to fall back to client...

8.8CVSS5.7AI score0.0032EPSS
Exploits0References3
Snyk
Snyk
added 2026/05/27 12:45 p.m.5 views

Improper Validation of Specified Quantity in Input

Overview org.keycloak:keycloak-services is an open source identity and access management solution for modern applications and services. Affected versions of this package are vulnerable to Improper Validation of Specified Quantity in Input in the TokenEndpoint endpoint when an oversized subjecttok...

8.8CVSS5.4AI score0.0032EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/27 12:0 a.m.19 views

PT-2026-43993

Name of the Vulnerable Software and Affected Versions Keycloak affected versions not specified Description An authenticated user with low privileges can achieve privilege escalation by sending an oversized JSON Web Token JWT, which is a compact, URL-safe means of representing claims to be...

8.8CVSS5.8AI score0.0032EPSS
Exploits0References12
Rows per page
Query Builder